Lucene search

MitreCVE-2010-0166

HistoryMar 25, 2010 - 9:00 p.m.

CVE-2010-0166

2010-03-2521:00:00

CWE-119

mitre

web.nvd.nist.gov

mozilla

firefox

mac os x

memory corruption

denial of service

cve-2010-0166

nvd

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

9.7

Confidence

High

EPSS

0.079

Percentile

94.3%

JSON

The gfxTextRun::SanitizeGlyphRuns function in gfx/thebes/src/gfxFont.cpp in the browser engine in Mozilla Firefox 3.6 before 3.6.2 on Mac OS X, when the Core Text API is used, does not properly perform certain deletions, which allows remote attackers to cause a denial of service (memory corruption and application crash) and possibly execute arbitrary code via an HTML document containing invisible Unicode characters, as demonstrated by the U+FEFF, U+FFF9, U+FFFA, and U+FFFB characters.

Affected configurations

Nvd

Node

mozillafirefoxMatch3.6

AND

applemac_os_x

VendorProductVersionCPE
mozillafirefox3.6cpe:2.3:a:mozilla:firefox:3.6:*:*:*:*:*:*:*
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mozilla	firefox	3.6	cpe:2.3:a:mozilla:firefox:3.6:::::::*
apple	mac_os_x	*	cpe:2.3:o:apple:mac_os_x::::::::

References

www.mozilla.org/security/announce/2010/mfsa2010-11.html

www.securityfocus.com/bid/38918

www.securityfocus.com/bid/38943

www.vupen.com/english/advisories/2010/0692

bugzilla.mozilla.org/show_bug.cgi?id=538065

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14182

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

9.7

Confidence

High

EPSS

0.079

Percentile

94.3%

JSON

Related for CVE-2010-0166